← volver
CVE-2025-49825

Teleport allows remote authentication bypass

CVSS 9.8 CRITICALEPSS 7.8%CWE-863
Vexday Risk Score
43Atención
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
CVSS 9.8EPSS 7.8%KEV nãoPoC Nuclei simMetasploit Patch
Ciclo de vida
17 jun 2025Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
Teleport provides connectivity, authentication, access controls and audit for infrastructure. Community Edition versions before and including 17.5.1 are vulnerable to remote authentication bypass. At time of posting, there is no available open-source patch.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
gravitational · teleport

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/gravitational/teleport/security/advisories/GHSA-8cqv-pj7f-pwpc